|
297641
|
- |
|
mantis
|
mantis
|
Directory traversal vulnerability in core/lang_api.php in Mantis before 1.1.2 allows remote attackers to include and execute arbitrary files via the language parameter to the user preferences page (a…
|
CWE-22
Path Traversal
|
CVE-2008-3333
|
2017-08-8 10:31 |
2008-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297642
|
- |
|
mybb
|
mybb
|
Cross-site scripting (XSS) vulnerability in MyBB 1.2.x before 1.2.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving search.php.
|
CWE-79
Cross-site Scripting
|
CVE-2008-3334
|
2017-08-8 10:31 |
2008-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297643
|
- |
|
punbb
|
punbb
|
Unspecified vulnerability in PunBB before 1.2.19 allows remote attackers to inject arbitrary SMTP commands via unknown vectors.
|
NVD-CWE-noinfo
CWE-94
Code Injection
|
CVE-2008-3335
|
2017-08-8 10:31 |
2008-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297644
|
- |
|
punbb
|
punbb
|
Multiple cross-site scripting (XSS) vulnerabilities in PunBB before 1.2.19 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors in (1) include/parser.php and (2) mode…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3336
|
2017-08-8 10:31 |
2008-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297645
|
- |
|
powerdns
|
authoritative_server
powerdns
|
PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, which might make it easier for remote attackers to poison DNS caches of other products running on other servers, a different iss…
|
CWE-20
Improper Input Validation
|
CVE-2008-3337
|
2017-08-8 10:31 |
2008-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297646
|
- |
|
tibco
|
hawk
iprocess_engine
mainframe_service_tracker
runtime_agent
|
Multiple buffer overflows in TIBCO Hawk (1) AMI C library (libtibhawkami) and (2) Hawk HMA (tibhawkhma), as used in TIBCO Hawk before 4.8.1; Runtime Agent (TRA) before 5.6.0; iProcess Engine 10.3.0 t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3338
|
2017-08-8 10:31 |
2008-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297647
|
- |
|
avidweb_technologies
|
jobbex_jobsite
|
search_result.cfm in Jobbex JobSite allows remote attackers to obtain sensitive information via unspecified vectors that reveal the installation path in an error message.
|
CWE-200
Information Exposure
|
CVE-2008-3339
|
2017-08-8 10:31 |
2008-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297648
|
- |
|
jobbex
|
jobsite
|
Cross-site scripting (XSS) vulnerability in search_result.cfm in Jobbex JobSite allows remote attackers to inject arbitrary web script or HTML via the searchFor variable (possibly the opt parameter.)
|
CWE-79
Cross-site Scripting
|
CVE-2008-3340
|
2017-08-8 10:31 |
2008-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297649
|
- |
|
jobbex
|
jobsite
|
Multiple SQL injection vulnerabilities in search_result.cfm in Jobbex JobSite allow remote attackers to execute arbitrary SQL commands via the (1) jobcountryid and (2) jobstateid parameters. NOTE: t…
|
CWE-89
SQL Injection
|
CVE-2008-3341
|
2017-08-8 10:31 |
2008-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297650
|
- |
|
myiosoft
|
easye-cards
|
Multiple cross-site scripting (XSS) vulnerabilities in staticpages/easyecards/index.php in MyioSoft EasyE-Cards 3.5 trial edition (tr) and 3.10a allow remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2008-3344
|
2017-08-8 10:31 |
2008-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
